Security · 3h ago
Cursor 0day Exposed: Full Disclosure as Last Resort
Security researchers disclosed a zero-day vulnerability in Cursor, an AI code editor, after the vendor failed to patch it. The flaw could allow code execution via malicious repositories. Full disclosure was chosen to pressure the company into action.
Meridian48 take
This incident highlights the tension between responsible disclosure and vendor inaction, raising questions about accountability in AI tool security.
Read the full reporting
Cursor 0day: When Full Disclosure Becomes the Only Protection Left →
Hacker News
cursor-0dayfull-disclosure